$ rpki-client -vvf repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/3130332e3139312e36302e302f32342d3234203d3e20313430343233.roa File: 3130332e3139312e36302e302f32342d3234203d3e20313430343233.roa (raw, json) Hash identifier: hpmksd9eMNwc5kNsNmYaL/Pd8BPAaDkCFnInyCLaFn8= Subject key identifier: 4F:81:D9:61:2D:82:D2:50:E0:A3:6C:9A:D7:39:8F:BC:CB:B2:12:DA Certificate issuer: /CN=2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5 Certificate serial: 64594BB35501ECDC6B8B32D488F2CD8286ADF20C Authority key identifier: 2D:6F:96:FA:63:0E:A7:AE:0A:2B:12:2B:6F:04:CC:4F:5F:32:CE:B5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/3130332e3139312e36302e302f32342d3234203d3e20313430343233.roa Signing time: Tue 30 Apr 2024 11:55:00 +0000 ROA not before: Tue 30 Apr 2024 11:50:00 +0000 ROA not after: Tue 29 Apr 2025 11:55:00 +0000 asID: 140423 IP address blocks: 103.191.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.crl rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Nov 2024 09:00:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:59:4b:b3:55:01:ec:dc:6b:8b:32:d4:88:f2:cd:82:86:ad:f2:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5 Validity Not Before: Apr 30 11:50:00 2024 GMT Not After : Apr 29 11:55:00 2025 GMT Subject: CN=4F81D9612D82D250E0A36C9AD7398FBCCBB212DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:a3:37:6a:8a:c7:be:0f:14:99:d3:fa:5e:88: 9f:eb:8d:41:3d:6f:95:a4:72:78:ff:12:c8:68:de: 48:f2:9c:c3:23:05:3d:0a:f0:62:be:8a:04:00:5f: fe:fc:44:59:24:60:94:d2:58:12:60:39:6c:8d:ff: 52:62:e1:d2:5a:77:ec:3d:83:89:72:18:d4:7c:2d: 2e:38:d5:c6:31:e2:10:8a:86:4a:96:74:ba:29:4e: 0d:4c:bc:9c:d5:c6:e8:18:eb:a2:56:59:44:f9:04: 6d:14:af:cf:04:90:53:c7:8d:42:12:11:87:60:a8: 25:1e:5b:cc:38:69:c4:32:b4:26:f0:ea:5b:d7:73: 81:c8:ba:51:0b:a1:23:b7:53:3f:06:ce:80:74:46: 92:aa:c9:a4:3b:51:a9:83:a0:47:c1:01:7c:65:b4: dd:d7:f4:5e:a0:00:a8:17:71:1e:3f:14:3c:0c:31: ec:a8:48:02:c5:0b:4e:dd:ff:75:7d:c3:23:ea:1d: a7:b4:9f:16:6b:84:e7:24:a6:2b:47:0d:75:47:6e: e5:75:4c:aa:05:5a:25:0f:86:a6:8d:f2:95:97:76: 7a:c9:9e:3a:3d:07:bc:b2:ba:44:4f:af:36:7f:84: a5:ea:ce:ad:e7:a5:ac:f3:d4:72:ee:b0:85:5b:86: 45:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:81:D9:61:2D:82:D2:50:E0:A3:6C:9A:D7:39:8F:BC:CB:B2:12:DA X509v3 Authority Key Identifier: keyid:2D:6F:96:FA:63:0E:A7:AE:0A:2B:12:2B:6F:04:CC:4F:5F:32:CE:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/3130332e3139312e36302e302f32342d3234203d3e20313430343233.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.60.0/24 Signature Algorithm: sha256WithRSAEncryption 68:5d:0f:d4:40:7b:75:01:50:2a:08:9b:0d:9b:94:c5:2a:28: 30:c3:cb:d9:8a:10:8b:d5:87:00:4b:66:b6:fb:dd:95:89:a3: 54:de:f9:22:27:7a:1f:e5:b7:24:2d:dc:3e:be:a0:df:33:f3: f7:53:f0:5a:2a:61:14:8d:62:2b:57:b4:d2:11:3f:3c:35:8d: 9c:16:ee:59:46:35:d1:77:70:5f:34:46:f2:65:bf:25:c5:91: 80:a9:38:80:2e:02:a6:f4:25:67:42:84:e4:79:4a:e9:05:bd: 52:89:a1:a4:57:2c:d7:b3:2e:9f:76:5d:85:a4:cc:12:96:3b: 8c:14:9a:58:d4:02:52:92:45:8a:e7:fd:3a:84:de:15:59:52: db:cb:e0:20:de:25:8c:b2:5c:87:0b:bd:27:b5:bb:5c:8d:05: 36:70:9a:f6:31:73:23:db:67:69:01:73:04:60:1b:d8:5a:88: dc:02:13:cf:28:32:2e:2d:f2:8c:6d:5d:1f:98:36:a5:20:01: 69:46:df:e2:cf:77:24:4b:0a:30:da:f5:82:e2:60:9e:61:d4: 07:c5:3a:a1:c8:36:3c:6a:a9:eb:b5:5e:ab:91:ce:85:e1:4a: 6f:2f:b7:02:28:fd:05:41:d2:61:2d:a9:cf:ea:da:d0:68:94: 02:28:0e:d6 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUZFlLs1UB7NxrizLUiPLNgoat8gwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQ2Rjk2RkE2MzBFQTdBRTBBMkIxMjJCNkYwNENDNEY1 RjMyQ0VCNTAeFw0yNDA0MzAxMTUwMDBaFw0yNTA0MjkxMTU1MDBaMDMxMTAvBgNV BAMTKDRGODFEOTYxMkQ4MkQyNTBFMEEzNkM5QUQ3Mzk4RkJDQ0JCMjEyREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIozdqise+DxSZ0/peiJ/rjUE9 b5Wkcnj/Esho3kjynMMjBT0K8GK+igQAX/78RFkkYJTSWBJgOWyN/1Ji4dJad+w9 g4lyGNR8LS441cYx4hCKhkqWdLopTg1MvJzVxugY66JWWUT5BG0Ur88EkFPHjUIS EYdgqCUeW8w4acQytCbw6lvXc4HIulELoSO3Uz8GzoB0RpKqyaQ7UamDoEfBAXxl tN3X9F6gAKgXcR4/FDwMMeyoSALFC07d/3V9wyPqHae0nxZrhOckpitHDXVHbuV1 TKoFWiUPhqaN8pWXdnrJnjo9B7yyukRPrzZ/hKXqzq3npazz1HLusIVbhkWdAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUT4HZYS2C0lDgo2ya1zmPvMuyEtowHwYDVR0j BBgwFoAULW+W+mMOp64KKxIrbwTMT18yzrUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZTM0ZDJkOC0zNGFmLTQ3NTctOGFkOS05MmRhMzVkOTIxNjgvMC8yRDZGOTZGQTYz MEVBN0FFMEEyQjEyMkI2RjA0Q0M0RjVGMzJDRUI1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQ2Rjk2RkE2MzBFQTdBRTBBMkIxMjJCNkYwNENDNEY1RjMy Q0VCNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlMzRkMmQ4LTM0YWYtNDc1Ny04 YWQ5LTkyZGEzNWQ5MjE2OC8wLzMxMzAzMzJlMzEzOTMxMmUzNjMwMmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNDMwMzQzMjMzLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ788MA0GCSqG SIb3DQEBCwUAA4IBAQBoXQ/UQHt1AVAqCJsNm5TFKigww8vZihCL1YcAS2a2+92V iaNU3vkiJ3of5bckLdw+vqDfM/P3U/BaKmEUjWIrV7TSET88NY2cFu5ZRjXRd3Bf NEbyZb8lxZGAqTiALgKm9CVnQoTkeUrpBb1SiaGkVyzXsy6fdl2FpMwSljuMFJpY 1AJSkkWK5/06hN4VWVLby+Ag3iWMslyHC70ntbtcjQU2cJr2MXMj22dpAXMEYBvY WojcAhPPKDIuLfKMbV0fmDalIAFpRt/iz3ckSwow2vWC4mCeYdQHxTqhyDY8aqnr tV6rkc6F4UpvL7cCKP0FQdJhLanP6trQaJQCKA7W -----END CERTIFICATE-----Generated at Thu Nov 21 19:10:54 2024 by rpki-client on console-fra.rpki-client.org